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2. Citations and explanations (Rule 70.7) 

Dl : EP 689316 A2 
D2 : US 5018196 A 

The invention relates to a method and a system for digitally 
signing an electronic form in a secure manner by means of a 
mobile station. The most significant feature is that a hash 
code is used for verifying the authenticity of the signed and 
transferred material. Hash code in the signed material is 
compared with hash code computed from the material before 
signing . 

In amended claims 1 and 10 the differences between the 
invention and the state-of-the-art technology as represented 
by Dl and D2 are clearly defined. 

Therefore, the requirements of novelty and inventive step are 
now considered fulfilled. 

Also the requirement of industrial applicability is fulfilled. 
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CLAIMS 

1. Method for digitally signing an electronic 
form in a secure manner by means of a mobile station, 
said method comprising the steps of 
5 transferring the material to be signed, which 

comprises the form, its identifier, shared informa- 
tion, and/or essential information added to it, to the 
mobile station, characterized in that 

a first hash code (HI) is computed from the 
10 material to be signed; 

the first hash code is added to the material, 
to be transferred to the mobile station; 

the material transferred to the mobile sta- 
tion is signed digitally by means of the mobile sta- 
15 tion; and 

the authenticity of the signed and trans- 
ferred material is verified by comparing the signed 
hash code with the first hash code computed from the 
material before signature. 
20 2. Method as defined in claim 1, cha- 

racterized in that 

the material transferred to the mobile sta- 
tion for signature is transferred to a second party; 
and 

25 the signed material is transferred to the 

second party, whereupon the second party verifies the 
authenticity of the signature. 

3. Method as defined in claim 1 or 2, 
characterized in that 

30 the material is encrypted before being trans- 

ferred between the mobile station and the second 
party; and 

the encrypted material is decrypted before 
any treatment of the material, such as signature and 
35 verification of authenticity. 

4. Method as defined in any one of the pre- 
ceding claims 1 - 3, characterized in that 
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the form is generated using a pre-agreed form 
template provided with an identifier, the essential 
information being filled in in the form template be- 
fore it is transferred to the mobile station. 
5 5. Method as defined in any one of the pre- 

ceding claims 1 - 4 , characterized in that 

the hash code is generated using a hash func- 
tion. 

6. Method as defined in any one of the pre- 
10 ceding claims 1 - 5, characterized in that 

the signature and/or encryption of the mes- 
sage is implemented using a public and private key 
method. 

7. Method as defined in any one of the pre- 
15 ceding claims 1-6, characterized in that 

the material and/or part of it is presented 
in the mobile station before the material is signed. 

8. Method as defined in any one of the pre- 
ceding claims 1-7, characterized in that 

20 the mobile station is started in signature 

mode before the transfer of the material into the mo- 
bile station. 

9. Method as defined in any one of the pre- 
ceding claims 1 - 8, characterized in that 

25 the material is stamped with a time stamp ; 

and 

the transaction of signature of the material 
is filed after the signature has been authenticated. 

10. System for digitally signing an elec- 
3 0 tronic form in a secure manner by means of a mobile 

station (MS), said system comprising 
a payment machine (2) ; 

means (3) connected to the payment machine 
for the generation of the material to be signed, said 
35 material comprising a form, its identifier, shared 
data, and/or essential information added to it; and 
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means (4) connected to the payment machine 
for the transfer of the material into the mobile sta- 
tion (MS) , characterized in that 

the payment machine comprises means (5) for 
5 computing a first hash code (HI) from the material to 
be signed; 

the mobile station comprises signing means 
(6) for the signing of the material transferred into 
it; and 

10 the payment machine comprises means (7) for 

verifying the authenticity of the signed and trans- 
ferred material by comparing s signed hash code (Hl ds ) 
with the hash code (HI) computed from the material be- 
fore signature. 

15 11. System as defined in claim 10, char- 

acterized in that the system comprises 

a server (8) connected to the payment machine 
(2) and the mobile station (MS) and controlled by a 
third party; and 

20 the mobile station comprises means for en- 

crypting the signed material. 

12. System as defined in claim 10 or 11, 
characterized in that the server (8) com- 
prises 

25 means (9) for the verification of authentic- 

ity of the digital signature. 

13. System as defined in any one of the pre- 
ceding claims 10 - 12, characterized in 
that the mobile station comprises 

30 means (10) for presenting the material and/or 

part of it in the mobile station before the signing of 
the material . 

14. System as defined in any one of the pre- 
ceding claims 10 - 13, characterized in 

3 5 that the server (8) comprises 

means (11) for stamping the material with a 
time stamp; and 
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means (12) for filing the transaction of sig- 
ning of the material after the signature has been aut- 
henticated . 
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METHOD AND SYSTEM FOR IMPLEMENTING A DIGITAL SIGNATURE 

The present invention relates to telecommuni- 
cation systems and to a technique for signing and en- 
crypting digital information. In particular, the in- 
5 vention relates to a system which makes it possible to 
sign an electronic form or other electronic informa- 
tion and to verify the authenticity of the signature 
and the signatory. 

10 BACKGROUND OF THE INVENTION 

In prior art, the use of a digital mobile 
station, e.g. a mobile station in the GSM system 
(Global System for Mobile communications, GSM) , for 
commercial transactions, such as paying a bill or mak- 

15 ing a payment by electronic . means , is known. Patent 
application US 5,221,838 presents a device which can 
be used for making a payment. The specification de- 
scribes an electronic payment system in which a termi- 
nal device capable of wired and/or wireless data 

20 transfer is used as a payment terminal. The terminal 
device according to the specification comprises a card 
reader, a keypad, a bar code reader for the input of 
information and a display unit for presenting the pay- 
ment information. 

25 Patent specification WO 94/11849 discloses a 

method for the utilization of telecommunication serv- 
ices and execution of payment transactions via a mo- 
bile telephone system. The specification describes a 
system comprising a terminal device which communicates 

3 0 over a telecommunication system with a service pro- 
vider's mainframe computer containing the service pro- 
vider's payment system. The terminal device used in a 
mobile telephone network, i.e. the mobile station, can 
be provided with a subscriber identity module compris- 

3 5 ing subscriber information for the identification of 
the subscriber and for the encryption of telecommuni- 
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cation. The information can be read into the terminal 
device so that it can be used in mobile stations. The 
specification mentions the GSM system as an example, 
in which a SIM card (Subscriber Identity Module, SIM) 
is used as a subscriber identification unit. 

In the system according to WO 94/11849, the 
mobile station communicates with a base station com- 
prised in the mobile telephone network. According to 
the specification, a connection is further established 
with the payment system, and the amount to be paid as 
well as the data required for the identification of 
the subscriber are transmitted into the payment sys- 
tem. In the bank service described in the specifica- 
tion, the client places a service card given by the 
15 bank and containing a SIM unit into a terminal device 
used in the GSM network. In telephone based bank serv- 
ice, the terminal device may be a GSM mobile station 
consistent with the standard. Using the method de- 
scribed in the specification, a wireless telecommuni- 
2 0 cation connection can be used for making payments 
and/or paying bills or implementing other bank or cash 
services . 

The problem with the above-mentioned solu- 
tions is that they do not involve any consideration of 

25 reliability of the payment from the payer's and the 
payee's point of view. When a mobile station is used 
for making a payment, it is important that both the 
payer and the payee can trust the system. The payer 
must know exactly what he is paying for, how much he 

30 is paying, to whom he is paying, how he is paying etc. 
The payee must also know exactly who is paying for 
what and how much etc . 

As is well known, transmitting information in 
electronic form from one place to another is easy. 

3 5 However, it is more difficult to make sure that the 
information transmitted remains unchanged during the 
transmission and that e.g. the information presented 
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on the display of a mobile telephone is transmitted in 
exactly the same form and unchanged to the receiver. 

A previously known practice is to use a hash 
code, which is a data field formed and computed from 
5 the information to be transmitted. The hash code is 
generally computed using an algorithm which is a one- 
way function, in other words, the hash code can not be 
deciphered so as to reveal the information from which 
it has been generated. An algorithm that may be used 

10 for this purpose is SHA-1 (Secure Hash Algorithm) . 

A digital signature, which is considered as a 
general requirement in electronic payment, is used to 
verify the integrity of the material transmitted and 
the origin of the sender. A digital signature is gen- 

15 erated by encrypting a hash code computed from the ma- 
terial to be transmitted, using the sender's secret 
key. As nobody else knows the sender's secret key, the 
receiver decrypting the encrypted material can be as- 
sured that the material is unchanged and generated by 

2 0 the sender. An example of an algorithm used in digital 

signatures is the RSA encryption algorithm, which is 
an encryption system based on a private key and a pub- 
lic key and which is also used for the encryption of 
messages . 

25 

OBJECT OF THE INVENTION 

The object of the present invention is to 
eliminate the problems referred to above. A specific 
object of the invention is to disclose a new type of 

3 0 method and system for the signing of a form or corre- 

sponding information by means of a mobile station. In 
this context, "form' may refer to many types of mes- 
sage, dispatch or information structure with various 
contents. The form may consist of object type or soft- 
3 5 ware object type information which can be processed in 
electronic form. 
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A further object of the invention is to dis- 
close a simple method for implementing commercial 
transactions, such as paying a bill and transacting 
business with a bank, using a mobile station, a method 
5 that is easy to implement with present technology. 

SUBJECT OF THE INVENTION 

The invention concerns a method for signing 
an electronic form as defined above with a digital 

10 signature in a secure manner using a mobile station or 
some other equivalent and comparable device. In the 
method, the material to be signed, which may comprise 
at least the form, its identifier, shared data, and/or 
essential information added to the form, is trans- 

15 f erred into the mobile station. The material to be 
signed can also be generated from an identifier of the 
form and essential information associated with the 
form; for instance, in the case of a bank transfer 
form, the material to be signed may be generated from 

20 the identifier of the bank transfer form and the data 
in the essential fields in it, such as the payer, 
payee and amount fields. 

According to the invention, from the material 
to be signed, a first hash code is computed, prefera- 

25 bly before the material is transferred into the mobile 
station. The hash code is added to the material, to be 
transferred with it, thus allowing the hash code to be 
used as an aid in verification. After the material has 
been transferred into the mobile station, it is signed 

3 0 in the mobile station and, further according to the 
invention, the authenticity and conformity of the 
signed and transferred material are verified by com- 
paring the signed hash code with the hash code com- 
puted from the material before signature. The signa- 

3 5 ture can also be accomplished by signing both the es- 
sential information and the hash code, in which case 
it will even ensure that the material signed via the 
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mobile station corresponds to the material transferred 
for signature. 

In the case of certain types of application, 
such as payment applications, the material transferred 
5 into the mobile station can also be transferred to a 
second party, e.g. a bank, which can compute a hash 
code from the material received. The material signed 
in the mobile station can further be encrypted and the 
encrypted and signed material can be transferred from 

10 the mobile station to the second party as well. The 
second party decrypts the encrypted information, veri- 
fies the signature, computes a second hash code from 
the material received from the mobile station and com- 
pares it with the first hash code computed from the 

15 original material. If the second party accepts the 
digital signature and if the first and second hash 
codes correspond to each other, then the bank will ac- 
cept the signature made via the mobile station. After 
the bank has accepted the signature, it can put a time 

2 0 stamp in the signed and encrypted material and file 
the transaction of signature of the material. 

The case described above is a procedure in 
which a client of a bank signs a form received from 
the bank. The client or mobile station user may commu- 

2 5 nicate locally with an automated payment machine or 

equivalent, in which case the payment machine trans- 
mits to the client a form for payment and approval. In 
this case, the client exchanges messages with the pay- 
ment machine locally and the payment machine transmits 

3 0 the digital signature data further. However, the pay- 

ment machine can infer from the communication it is 
transmitting that the client has accepted the service 
and payment form offered to it. The machine can serve 
the client locally in a manner desired and paid for by 
35 the client, without necessarily waiting for the bank's 
approval of it. In practice, the situation corresponds 
to the normal practice where e.g. a customer at a 



WO 00/39958 




PCT/FI99/01036 



6 



shop's cash machine pays for products or services with 
a cash card and the shop provides them to the customer 
without verifying the authenticity of the payment by 
contacting the bank* 
5 The material can also be encrypted before be- 

ing transferred into the mobile station, in which case 
the material has to be decrypted in the mobile station 
before signature. This expedient can be used to ensure 
that only the desired mobile station will receive the 

10 material to be transferred and to guarantee the secu- 
rity of the information. 

The form can be generated using a pre -agreed 
form overlay, message structure or any other informa- 
tion structure, provided with an identifier, in which 

15 pre-agreed essential information is filled in before 
the form is transferred into the mobile station. The 
hash code can be computed using e.g. a hash function. 
For the signature and/or encryption of the message 
and/or form, a public and private key method can be 

20 used. 

In a preferred embodiment of the invention, 
the material and/or part of it is presented in the mo- 
bile station prior to the signing of the material. For 
example, the payee, payer and reference information 

25 and the amount payable may be presented. It is also 
possible to require that the mobile station be started 
in signature mode before the transfer of the material 
into it. In practice, this may mean that the user of 
the mobile station has to enter another predetermined 

30 PIN code with which the mobile station has been con- 
figured to start in a predetermined signature mode. 
Thus, it is possible to use a kind of local authenti- 
cation. 

The invention also concerns a system for 
3 5 digitally signing an electronic form in a secure man- 
ner using a mobile station. The system preferably com- 
prises a payment machine and, connected to it, means 
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for generating the material to be signed and transfer- 
ring it into the mobile station, said material being 
as defined above. In this context, "payment machine 1 
may refer to any local or locally operated automated 
5 machine capable of communicating over a telecommunica- 
tion network with a service provider, such as a bank, 
shop or equivalent . 

The payment machine may also be implemented 
locally in a computer which communicates with the 

10 service provider e.g. over the Internet, the service 
provider providing products and services via the 
Internet. In this case, the material to be signed is 
transferred for signature from the computer into the 
mobile station using a local connection or directly 

15 from the service provider's own server without using a 
local computer and local connection. 

According to the invention, the payment ma- 
chine comprises means for computing a first hash code 
from the material to be signed. Moreover, the mobile 

2 0 station comprises signing means for the signing of the 

material transferred into it. The signing means may 
comprise a memory in which the algorithms and keys re- 
quired for the signature and encryption are stored, 
and a processor which is connected to the memory and 
25 which processes the material, implementing the signa- 
ture and possibly encryption. In addition, the payment 
machine comprises means for verifying the authenticity 
of the signed material transferred by comparing a hash 
code signed in the mobile station with a hash code 

3 0 computed from the material before signature. 

The system may also comprise a sever which is 
connected to the payment machine and/or to the mobile 
station and which is controlled by a second party, 
such as a bank or credit card company. Such a server 
3 5 may thus be maintained e.g. by a bank and it can be 
used in the implementation of bank transactions. The 
server may also comprise means for the verification of 
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the authenticity of a digital signature made by a mo- 
bile station and encrypting and decrypting means for 
the encryption and/or decryption of material trans- 
ferred between the server and the payment machine 
5 and/or mobile station. 

The server may also comprise means for stamp- 
ing the material with a time stamp and means for fil- 
ing the transaction of signature of the material after 
the signature has been authenticated . These can be im- 

10 plemented in a manner known in itself to the skilled 
person, so they will not be described here in detail. 

As compared with prior art, the present in- 
vention provides the advantage of facilitating the im- 
plementation of payment applications, verification 

15 transactions and the like. Thanks to the invention, a 
mobile station can be reliably used for making a digi- 
tal signature, and a digital signature can be incorpo- 
rated in many different applications. 



2 0 LIST OF ILLUSTRATIONS 

In the following, the invention will be de- 
scribed by the aid of a few examples of its preferred 
embodiments with reference to the attached drawing, 
wherein 

25 Fig. 1 presents a preferred system according 

to the present invention ; 

Fig. 2 presents another preferred system ac- 
cording to the present invention; 

Fig. 3 presents a preferred embodiment of the 
30 present invention in the form of a flow diagram; and 

Fig. 4 is a diagrammatic representation of a 
preferred example of the generation of the material to 
be signed in conjunction with the present invention. 

The system presented in Fig. 1 comprises a 
35 local payment machine (LPM) 2 and, connected to it, 
means for generating the material to be signed, com- 
prising a form, its identifier, shared data and/or es- 



WO 00/39958 




PCT/FI99/01036 



9 



sential information associated with it. In addition, 
means 4 connected to it for transferring the material 
to a mobile station. Correspondingly, the mobile sta- 
tion comprises means 1 used by the mobile station (MS) 
5 to communicate with the payment machine. In an embodi- 
ment, means 1 and 4 are implemented using the Blue- 
tooth technology. A more detailed description of the 
Bluetooth technology will be found e.g. on WWW page 
www.bluetooth.com . Other, known link access protocols, 

10 such as the infrared interface, may also be used. 

The system presented in Fig. 1 further com- 
prises a server 8 which is connected via a TCP/IP link 
to the payment machine 2 and which in this example is 
managed by a bank. The server further comprises means 

15 9 for verifying the authenticity of the signature - in 
practice, these means are used to decrypt the en- 
crypted messages received and to compare the digital 
signatures contained in them with the user information 
received. Moreover, the server comprises means 11 and 

20 12 for stamping the signed material with a time stamp 
and filing the signing transaction after the signature 
has be authenticated. Corresponding verification means 
may also be comprised in the payment machine, and in 
this example they are indicated by the number 7. Means 

25 7, 11 and 12 may also have a feature for fetching the 
required public keys from universal key management 
servers e.g. via a TCP/IP network. 

In the example presented in Fig. 1, the en- 
crypted material, comprising an invoice form and a 

3 0 hash code HI computed from it, is transferred from the 
payment machine 2 into the mobile station MS, step 1. 
In the mobile station, the material, i.e. the invoice 
form and the payee, payer, amount and reference number 
of the payment, are presented on the display (10) of 

3 5 the mobile telephone, allowing the user of the mobile 
station to check what he/she is signing. Using the mo- 
bile station MS, the user then signs the material and 
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the hash code HI computed from it . The material with 
the digitally signed hash code Hl ds added to it is 
transferred into the payment machine 2, step 2. The 
messages transmitted between the payment machine 2 the 
5 mobile station MS can be encrypted using public and 
private keys of the mobile station user and the pay- 
ment machine. After the authenticity of the signature 
has been verified in the payment machine 2, a clearing 
message is sent from the payment machine to the bank, 

10 step 3. Clearing is a known practice generally used in 
banking, so it will not be described here in detail. 

Reference is now made to Fig. 2, which pres- 
ents a system corresponding to Fig. 1, but in this 
case the system is used in a somewhat different man- 

15 ner. First, the material generated in the payment ma- 
chine, e.g. a form, is transferred to the bank, step 
1. Next, in the payment machine, a hash code HI is 
computed from the material and transferred to the mo- 
bile station for signature, step 2. The transfer can 

20 be implemented using a local link, e.g. a Bluetooth 
connection. In the mobile station, the message re- 
ceived is signed digitally, whereupon the signed and 
possibly encrypted material is sent to the bank, step 
3. In the bank, the hash code HI computed from the ma- 

25 terial received from the payment machine is compared 
with the digitally signed hash code Hl ds received from 
the mobile station, and if the two hash codes match, 
then the signing transaction is approved. After this, 
using a server, a time stamp is added and the signing 

3 0 transaction thus obtained is filed. The bank may also 
be some other corresponding service provider, such as 
a credit card company, in which case, in addition to 
the above description, a confirmation of authenticity 
of the signature is sent to the bank, payment machine 

3 5 or other service provider. In this case, the credit 
card company, after confirming the signature, takes 
responsibility for the transaction. 
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Referring to Fig. 3, a preferred embodiment 
of the invention will be described. First, the mate- 
rial to be signed by means of a mobile station is gen- 
erated, block 31- From the material, a first hash code 
5 HI is computed, block 32. Next, block 45, a check is 
performed to establish whether the material has to be 
encrypted before transmission. If the material has to 
be encrypted, then the procedure goes on to block 4 6 
and the material is encrypted using the mobile station 

10 user's public key. After the encryption, the procedure 
goes on to block 33. If the material need not be en- 
crypted, then action proceeds directly to block 33, 
where the material is transferred to the mobile sta- 
tion. Next, the procedure goes on to block 34, and the 

15 user checks the material or the essential information 
in it, presented on the display of the mobile station, 
in other words, the user checks whether e.g. the payee 
and the payment in an invoice are correct. If the 
payer agrees, in block 35, then action proceeds to 

20 block 37 and the material is signed. If the payer does 
not agree in block 35, then the procedure goes on to 
block 36, where a reject message is sent to the sender 
of the material, e.g. a payment machine, and the proc- 
ess is stopped. From block 37, action proceeds to 

2 5 block 38, where a data aggregate is generated from the 

digital signature and hash code and possibly from the 
material received, comprising e.g. the essential in- 
formation contained in the form, block 38. After that, 
the data aggregate is transferred to the payment ma- 

3 0 chine, block 39, from where the process goes on to 

block 40, where the hash code computed from the trans- 
ferred material is compared with the signed hash code. 
If the hash codes match, block 41, then the signature 
is accepted and the further actions defined are car- 
3 5 ried out. 

If in block 40 the hash codes did not match, 
then the procedure can be repeated. At this point it 
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is possible to use a counter to check that the mate- 
rial will not be sent more times than previously 
agreed- From block 4 0 , the procedure goes on to block 
43, where the value of a counter k - k + 1 is incre- 
5 mented by one, whereupon action proceeds to block 44, 
where the value of the counter is checked, this value 
indicating the number of times the material has been 
transferred to the mobile station. If the value ex- 
ceeds a pre-agreed limit, then the procedure goes on 

10 to block 42 and a reject message is sent to the mobile 
station. If the value of the counter is smaller than 
the pre-agreed limit, then the procedure returns to 
block 31 and the process is repeated. 

Fig. 4 illustrates a preferred way of digi- 

15 tally generating and signing the form or material . The 
material to be transferred to the mobile station com- 
prises a form identifier, block 51, all the forms used 
having unique identifiers. Associated with the form 
identifier is a form template, block 52; based on 

2 0 these, the applications, the client and the provider 

of the application know exactly what type of form is 
being used in each case. When the material is being 
generated, the form identifier and the form template 
are chained sequentially as illustrated in Fig. 4, 
25 whereupon a first hash code is computed from them, 
block 54 . 

In many cases, form data is added to the 
form, block 53, even before the form is transferred to 
the mobile station for signature. In this case, the 

3 0 form identifier and the form data are concatenated in 

the order indicated in Fig. 4 and the bit sequence ob- 
tained from them is further concatenated with sixteen 
random bytes, block 55. The first hash code from block 
54 is combined with these data. 
3 5 At this point, the material is ready to be 

transferred to the mobile station, whereupon a second 
hash code is computed from it, block 56. In practice, 
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the second hash code is computed in the mobile station 
and added to the message to be signed, block 57. Like- 
wise, user data, which the mobile station user may 
have complemented with personal information as needed, 
5 has been added to the message to be signed. To this 
message to be signed are preferably also added the 16 
random bytes from block 55, thus making it possible to 
verify the authenticity of the signed message gener- 
ated by the party transferring the material and the 

10 mobile station user. After the random bytes, the user 
data and the second hash code have been set in se- 
quence, the message is signed digitally in the user's 
mobile station. After this, the message can be trans- 
mitted further to a second party, to a payment machine 

15 or other original source of the material. 

In summary, let it be further stated that the 
invention purports to implement a method and system in 
which a user, a service provider and a bank, which are 
mentioned as an example, are able to verify the 

2 0 authenticity of a digital signature. The objective is 
to enable the material to be signed to be bound to 
some user data, format and a digital signature made by 
the user. In other words, it must be possible to bind 
the signature to a certain kind of chain, which in 

2 5 practice corresponds to the currently used chain in 

which the user confirms a purchase by his/her own man- 
ual signature. Similarly, the object of the method is 
to identify the signatory in a reliable manner as re- 
quired and intended by the legislator. 

3 0 The invention is not restricted to the exam- 

ples described above, but many variations are possible 
within the limits of the sphere of protection defined 
by the claims . 
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CLAIMS 

1. Method for digitally signing an electronic 
form in a secure manner by means of a mobile station, 
said method comprising the steps of 
5 transferring the material to be signed, which 

comprises the form, its identifier, shared informa- 
tion, and/or essential information added to it, to the 
mobile station, characterized in that 

a first hash code (HI) is computed from the 
10 material to be signed; 

the hash code is added to the material, to be 
transferred to the mobile station; 

the material transferred to the mobile sta- 
tion is signed digitally by means of the mobile sta- 
15 tion; and 

the authenticity of the signed and trans- 
ferred material is verified by comparing the signed 
hash code with the hash code computed from the mate- 
rial before signature. 
20 2. Method as defined in claim 1, cha- 

racterized in that 

the material transferred to the mobile sta- 
tion for signature is transferred to a second party ,- 
and 

25 the signed material is transferred to the 

second party, whereupon the second party verifies the 
authenticity of the signature. 

3, Method as defined in claim 1 or 2, 
characterized in that 

3 0 the material is encrypted before being trans- 

ferred between the mobile station and the second 
party ; and 

the encrypted material is decrypted before 
any treatment of the material, such as signature and 
3 5 verification of authenticity. 

4. Method as defined in any one of the pre- 
ceding claims 1-3, characterized in that 
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the form is generated using a pre-agreed form 
template provided with an identifier, the essential 
information being filled in in the form template be- 
fore it is transferred to the mobile station. 
5 5. Method as defined in any one of the pre- 

ceding claims 1 - 4 , characterized in that 

the hash code is generated using a hash func- 
tion. 

6. Method as defined in any one of the pre- 
10 ceding claims 1 - 5, characterized in that 

the signature and/or encryption of the mes- 
sage is implemented using a public and private key 
method. 

7 . Method as defined in any one of the pre- 
15 ceding claims 1 - S, characterized in that 

the material and/or part of it is presented 
in the mobile station before the material is signed. 

8 . Method as defined in any one of the pre- 
ceding claims 1 - 7, characterized in that 

2 0 the mobile station is started in signature 

mode before the transfer of the material into the mo- 
bile station . 

9. Method as defined in any one of the pre- 
ceding claims 1-8, characterized in that 

25 the material is stamped with a time stamp; 

and 

the transaction of signature of the material 
is filed after the signature has been authenticated. 

10. System for digitally signing an elec- 
30 tronic form in a secure manner by means of a mobile 

station (MS) , said system comprising 
a payment machine (2) ; 

means (3) connected to the payment machine 
for the generation of the material to be signed, said 
35 material comprising a form, its identifier, shared 
data, and/or essential information added to it; and 
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means (4) connected to the payment machine 
for the transfer of the material into the mobile sta- 
tion (MS) , characterized in that 

the payment machine comprises means (5) for 
5 computing a first hash code (HI) from the material to 
be signed; 

the mobile station comprises signing means 
(6) for the signing of the material transferred into 
it; and 

10 the payment machine comprises means (7) for 

verifying the authenticity of the signed and trans- 
ferred material by comparing s signed hash code (Hl ds ) 
with the hash code (HI) computed from the material be- 
fore s ignature . 

15 11. System as defined in claim 10, char- 

acterized in that the system comprises 

a server (8) connected to the payment machine 
(2) and the mobile station (MS) and controlled by a 
third party; and 

2 0 the mobile station comprises means for en- 

crypting the signed material. 

12. System as defined in claim 10 or 11, 
characterized in that the server (8) com- 
prises 

25 means (9) for the verification of authentic- 

ity of the digital signature. 

13. System as defined in any one of the pre- 
ceding claims 10-12, characterized in that 
the mobile station comprises 

3 0 means (10) for presenting the material and/or 

part of it in the mobile station before the signing of 
the material . 

14. System as defined in any one of the pre- 
ceding claims 10-13, characterized in that 

3 5 the server (8) comprises 

means (11) for stamping the material with a 
time stamp; and 
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means (12) for* filing the transaction of 
signing of the material after the signature has been 
authenticated. 
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Dl: EP 689316 A2 
D2: US 5018196 A 

The invention relates to a method and a system for digitally 
signing an electronic form in a secure manner by means of a 
mobile station. The most significant feature is that a hash 
code is used for verifying the authenticity of the signed and 
transferred material. Hash code in the signed material is 
compared with hash code computed from the material before 
signing- 

In amended claims 1 and 10 the differences between the 
invention and the state-of-the-art technology as represented 
by Dl and D2 are clearly defined. 

Therefore, the requirements of novelty and inventive step are 
now considered fulfilled. 

Also the requirement of industrial applicability is fulfilled. 
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CLAIMS ' 

1 . Method for digitally signing an electronic 
form a secure manner by means of a mobile station, 
said method comprising the steps of 
5 transferring the material to be signed,/ which 

comprises Vhe form, its identifier, shared 
tion, and/ox\ essential information added to 
mobile statio\, characterized in ^tl 

a first hash code (HI) is computed from the 
10 material to be sXgned; / 

the hash\code is added to the/material, to be 
transferred to the Vobile station; / 

the material transferred /Lo the mobile sta- 
tion is signed digitally by meaijei of the mobile sta- 
15 txotif and 

the authenticity of/ the signed and trans- 
ferred material is verified by comparing the signed 
hash code with the hash c^cS^e computed from the mate- 
rial before signature. 
20 2. Method as /&efined\ in claim 1, c h a 

racterized in ilhat 

the material transferred, to the mobile sta- 
tion for signature/ is transferred\to a second party ; 
and / 
25 the signed material is transferred to the 

second party, /whereupon the second par\y verifies the 
authenticity/ of the signature . 

3/ Method as defined in cla^rn 1 or 2, 
characterised in that \ 



3 0 / the material is encrypted before being trans- 

ferred between the mobile station and the, second 
part#; and \ 

the encrypted material is decrypted before 
xy treatment of the material, such as signature^ and 
35 verification of authenticity. \ 

4 . Method as defined in any one of the pre- 
ceding claims 1-3, characterised in that 
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30 



the form is generated using a pre -agreed form 
-emplate provided with an identifier, the essential 
information being filled in in the form template /be- 
fore it is transferred to the mobile station. / 

5 . Method as defined in any one of tt^e pre- 
ceding\claims 1 - 4, characterized in that 

the hash code is generated using a J^ash func- 
tion- 
ed. Method as defined in any one/of the pre- 
10 ceding claimk 1 - 5, characteri Z/^d in that 

the Signature and/or encryption of the mes- 
sage is implemented using a public Vand private key 
method. 

7 . Method defined in any one of the pre - 
is ceding claims 1 - 6, \ c h a r a c t/e r i z e-d in that 

the material ^and/or P^rt of it is presented 
in the mobile station before t^ie material is signed. 

8. Method as defined in any one of the pre- 
ceding claims 1-7, c h cterized in that 

20 the mobile stayionXis started in signature 

mode before the transfer of the material into the mo- 
bile station. 

9. Method &s defined in\any one of the pre- 
ceding claims 1 - AT, c h a r a c t eV i z e d in that 

25 the material is stamped wi>th a time stamp; 

and 

the /transaction of signature d€ the material 
is filed afjrer the signature has been authenticated, 

y*. System for digitally signing an elec^ 
£6rm in a secure manner by means of\ a mobile 
(MS) , said system comprising 
a payment machine {2} ; 

means (3) connected to the payment machine 
f^r the generation of the material to be signed, £aid 
35 material comprising a form, its identifier, shared 
data, and/or essential information added to it; and 
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means (4) connected to the payment machine 
for t$ie^ transfer of the material into the mobile Ra- 
tion (Ms\, characterized in that 

t^ie payment machine comprises means for 
computing a\ first hash code (HI) from the material to 
be signed; \ 




the i^obile station comprises signing means 
(6) for the signing of the material transferred into 
it; and \^ 

10 the payment machine comprised means (7) for 

verifying the authenticity of the iigned and trans- 
ferred material by comparing s signed hash code (Hl ae ) 
with the hash code (KlX computed /xrom the material be- 
fore signature- \ / 

15 11- System as defined in claim 10, char- 

acterized in that the/system comprises 

a server (8) conn/ct£d to the payment machine 
(2) and the mobile station (i^S) and controlled by a 
third party; and / \ 

2 0 the mobile ^station comprises means for en- 

crypting the signed /material . 

12. System as defined in\ claim 10 or 11, 
characteri/zed in that the\ server (8) com- 
prises 

2 5 means (9) for the verification of authentic- 

ity of the yw.gital signature. \ 

13. System as defined in any one\of the pre- 
ceding claims 10-12, characteriz e\d in that 
the mobile station comprises \ 

30 / means (10) for presenting the material and/or 

part of it in the mobile station before the signing of 
tine material . \ 

14. System as defined in any one of theVre- 
ceding claims 10-13, characterized in that 

35 the server (8) comprises \ 
means (11) for stamping the material with a 
time stamp; and 
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MENETELMA JA JARJESTELMA DIGITAALISEN ALLEKIRJOITUKSEN 
TOTEUTTAMI SEKS I 

Esilla oleva keksinto liittyy tietoliikenne- 
jarjestelmiin ja digitaalisen tiedon allekir j oitus- ja 
5 salaustekniikkaan. Erityisesti keksinto liittyy uuden- 
tyyppiseen ja kehittyneeseen menetelmaan ja jarjestel- 
maan, jonka avulla lomake tai muu allekir j oitettava 
sahkoisessa muodossa oleva tieto voidaan allekir joit- 
taa ja varmistua allekir j oituksen ja allekir j oittaj an 
10 oikeellisuudesta . 

TEKNIIKAN TASO 

Entuudestaan on tunnettua kayttaa digitaalis- 
ta matkaviestinta, kuten GSM- jarjestelman (Global Sys- 
15 tern for Mobile Communications, GSM) matkaviestinta, 
kaupallisiin transakt ioihin, kuten laskun tai maksun 
maksamiseen sahkoisesti. Patentti julkaisusta US 
5,221,838 tunnetaan laite, jota voidaan kayttaa maksa- 
miseen, Julkaisussa on kuvattu sahkoinen maksujarjes- 

2 0 telma, jossa maksupaatteena kaytetaan langattomaan 

ja/tai langalliseen tiedonsiirtoon kykenevaa paatelai- 
tetta. Julkaisun mukaiseen paatelaitteeseen kuuluu 
kortinluki ja, nappaimisto, ja viivakoodin lukija tie- 
to j en syottamiseksi ja naytto maksuinf ormaat ion esit- 
25 tamiseksi. 

Patentti julkaisusta WO 94/11849 tunnetaan me- 
netelma tietoliikennepalveluiden kayttamiseksi ja mak- 
suliikenteen suorittamiseksi matkapuhelinj ar j estelmal - 
la. Julkaisussa kuvataan jarjestelma, johon kuuluu 

3 0 paatelaite, joka on yhteydessa televerkon kautta pal- 

veluntarjoajan keskustietokoneeseen, joka sisaltaa 
palveluntar j oa j an maksuj ar j estelman . Matkapuhel inver- 
kon paatelaitteeseen eli matkaviest imeen voidaan lisa- 
ta tilaajan tunnistusyksikko, joka kasittaa tilaaja- 
35 tiedot tilaajan tunnistamiseksi ja teleliikenteen sa- 
laamiseksi. Tiedot voidaan lukea paatelaitteeseen kay- 



# 

2 
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tettavaksi matkaviest imissa . Esimerkkina julkaisussa 
mainitaan GSM- j ar j estelma , jossa kaytetaan SIM-korttia 
(Subscriber Identity Module, SIM) tilaajan tunnis- 
tusyksikkona . 

5 Julkaisun WO 94/11849 mukaisessa jarjestel- 

massa matkaviestin on yhteydessa matkapuhelinverkon 
tukiasemaan. Julkaisun mukaan yhteys muodostetaan 
edelleen maksujarjestelmaan ja maksettava maara sama- 
ten kuin tilaajan tunnistamiseen tarvittava data vali- 

10 tetaan maksujarjestelmaan. Julkaisussa kuvatussa pank- 
kipalvelussa asiakas asettaa pankin palvelukortin, jo- 
ka sisaltaa SIM-yksikon, GSM-verkon paatelaitteeseen. 
Puhelinperustaisessa pankkipalvelussa paatelaite voi 
olla standardin mukainen GSM-matkaviest in . Julkaisussa 

15 kuvatulla menetelmalla voidaan kayttaa langatonta tie- 
toliikenneyhteytta maksujen ja/tai laskujen tai muiden 
vastaavien pankkipalveluj en tai kassapalveluj en to- 
teutt ami seen . 

Ongelmana ylla mainituissa ratkaisuissa on, 

20 etta niissa ei oteta kantaa maksun luotettavuuteen 
maksajan ja maksun saajan kannalta. Kaytettaessa mat- 
kaviestinta maksamiseen on tarkeaa, etta seka maksaja 
etta maksun saaja voivat luottaa j ar j estelmaan . Maksa- 
jan on tarkkaan tiedettava, mista maksaa, minka verran 

25 maksaa, kenelle maksaa, miten maksaa jne. Maksun saa- 
jan on myos tarkkaan tiedettava, kuka maksaa, mista 
maksaa, minka verran maksaa jne. 

Kuten tiedetaan, tiedon siirtaminen paikasta 
toiseen sahkoisessa muodossa on helppoa. Sen sijaan 

30 vaikeampaa on varmistua siita, etta siirretty tieto 
sailyy siirron aikana muuttumattomana ja siita, etta 
esimerkiksi matkapuhelimen naytolla esitetty tieto la- 
hetetaan juuri sellaisenaan ja muuttumattomana vas- 
taanotta j alle . 

35 Entuudestaan on tunnettua kayttaa tiivistet- 

ta, joka on lahetettavasta tiedosta muodostettu ja 
laskettu tietokentta. Tiivisteen laskemiseen kaytetaan 
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yleensa algoritmia, joka on yksisuuntainen funktio eli 
tiivisteesta ei ole mahdollista selvittaa, sen muodos- 
tamiseen kaytettyja tietoja. Eras kaytettava algoritmi 
voi olla SHA-1 (Secure Has Algorithm) . 
5 Digitaalisella allekirjoituksella, jota pide- 

taan yleisena vaat imustasona sahkoisessa maksamisessa, 
varmistetaan valitettavan aineiston eheys ja lahetta- 
jan alkupera. Digitaalinen allekir j oitus muodostetaan 
salaamalla valitettavasta aineistosta laskettu tiivis- 

10 te lahettajan salaisella avaimella. Koska kukaan muu 
ei tunne lahettajan salaista avainta, voi vastaanotta- 
ja purkaessaan salauksen lahettajan julkista avainta 
kayttaen varmistua siita, etta aineisto on muuttumaton 
ja lahettajan muodostama. Eras esimerkki digitaalises- 

15 sa allekir j oituksessa kaytettavasta algoritmista on 
RSA-salausalgoritmi , joka on julkisen ja salaisen 
avaimen salaus j ar j estelma ja jota kaytetaan myos vies- 
tien salaamiseen. 

2 0 KEKSINNON TARKOITUS 

Esilla olevan keksinnon tarkoituksena on 
poistaa edella esitetyt ongelmat . Erityisesti esilla 
olevan keksinnon tarkoituksena on tuoda esiin uuden 
tYYPPi nen menetelma ja j arj estelma lomakkeen tai muun 

25 vastaavan tiedon allekir j oittamiseksi matkaviestimel - 
la. Tassa yhteydessa lomakkeella voidaan tarkoittaa 
monen tyyppista ja -sisaltoista sahkoisesti tulkitta- 
vissa olevaan viestia, sanomaa tai tietorakennetta . 
Lomake voi olla olio- tai ohj elmisto-obj ekt i 

30 tyyppinen informaatio, jota voidaan kasitella sahkoi- 
sessa muodossa. 

Edelleen keksinnon tarkoituksena on tuoda 
esiin yksinkertainen ja helposti nykytekniikkaan im- 
plementoitavissa oleva menetelma kaupallisten transak- 

35 tioiden, kuten laskun maksamisen ja pankkiasioinnin, 
toteuttamiseksi matkaviest imella . 
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KEKSINNON KOHDE 

Keksinnon kohteena on menetelma sahkoisessa 
muodossa olevan lomakkeen, joka maariteltiin ylla, di- 
git aaliseksi allekirj oittamiseksi turvallisest i kayt- 
taen matkaviestinta tai muuta vastaavaa ja siihen ver- 
rattavissa olevaa laitetta. Menetelmassa siirretaan 
allekir joitettava aineisto, joka voi kasittaa ainakin 
lomakkeen, sen tunnisteen, jaetun datan, ja/tai lomak- 
keeseen lisatyt olennaiset tiedot, matkaviestimeen. 
Allekirj oitettava aineisto voidaan muodostaa myos lo- 
makkeen tunnisteesta ja lomakkeeseen liittyvista olen- 
naisista tiedoista, esimerkiksi lomakkeen ollessa 
pankkisiirtolomake , voidaan aineisto muodostaa pankki- 
siirtolomakkeen tunnisteesta ja lomakkeen olennaisten 
kenttien tiedoista, kuten maksajasta, saajasta ja sum- 
masta . 

Keksinnon mukaisesti lasketaan allekir j oitet- 
tavasta aineistosta ensimmainen tiiviste edullisesti 
ennen aineiston siirtamista matkaviestimeen. Tiiviste 
lisataan aineistoon siirrettavaksi , jolloin sita voi- 
daan kayttaa apuna tarkistuksen suorittamisessa . Kun 
aineisto on siirretty matkaviestimeen, se allekirjoi- 
tetaan matkaviestimessa ja edelleen keksinnon mukai- 
sesti allekir j oitetun ja siirretyn aineiston oikeelli- 
suus ja vastaavuus varmistetaan vertaamalla allekir- 
joitettua tiivistetta ja aineistosta ennen allekirjoi- 
tusta laskettua tiivistetta keskenaan. Allekir joitta- 
minen voidaan tehda myos siten, etta allekirjoitetaan 
seka olennaiset tiedot ja tiiviste, jolloin varmistu- 
taan viela siitakin, etta matkaviestimella allekirjoi- 
tettu aineisto vastaa allekir j oitettavaksi siirrettya 
aineistoa. 

Kun kysymyksessa on tietyn tyyppiset sovel- 
lukset, kuten maksusovellukset , voidaan matkaviesti- 
meen siirretty aineisto siirtaa myos toiselle osapuo- 
lelle, esimerkiksi pankille, joka voi laskea saamas- 
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taan aineistosta tiivisteen. Matkaviestimessa allekir- 
joitettu aineisto voidaan edelleen salata, ja siirtaa 
salattu ja allekir j oitettu aineisto matkaviestimesta 
myos toiselle osapuolelle. Toinen osapuoli purkaa sa- 
lauksen, tarkistaa allekirjoituksen, laskee matkavies- 
timesta saamastaan aineistosta toisen tiivisteen ja 
vertaa tata ensimmaiseen alkuperaisesta aineistosta 
laskemaansa t iivisteeseen . Jos toinen osapuoli hyvak- 
syy digitaalisen allekir j oituksen ja jos ensimmainen 
ja toinen tiiviste vastaavat toisiaan, pankki hyvaksyy 
matkaviestimella tehdyn allekir j oituksen . Kun pankki 
on hyvaksynyt allekir j oituksen, se voi merkita alle- 
kir j oitettuun j a purettuun aineistoon aikaleiman j a 
arkistoida aineiston allekir j oitustapahtuman . 

Edella on kuvattu menettely, jossa asiakas 
allekir j oittaa pankille pankilta saamansa lomakkeen . 
Asiakas tai matkaviestimen kayttaja voi olla yhteydes- 
sa paikallisesti maksuautomaattiin tai vastaavaan, 
jolloin maksuautomaatt i valittaa asiakkaalle maksetta- 
vaksi ja hyvaksyttavaksi tarkoitetun lomakkeen. Tal- 
loin asiakas kay sanomavaihtoa maksuautomaatin kanssa 
paikallisesti ja maksuautomaatt i valittaa digitaaliset 
allekir j oitust iedot edelleen . Kuitenkin maksuautomaat - 
ti voi valittamastaan liikenteesta paatella asiakkaan 
hyvaksyneen sille tarjotun palvelun ja maksulomakkeen . 
Talloin automaatti voi palvella asiakasta taman halua- 
malla ja maksamalla tavalla paikallisesti odottamatta 
valttamatta pankilta hyvaksyntaa siita. Tilanne vastaa 
kaytannossa normaalia kaytantoa, jossa esimerkiksi 
kaupan kassalla asiakas pankkikortillaan maksaa tuot- 
teet tai palvelut, ja kauppa tarjoaa ne asiakkaalle 
varmistamatta maksun oikeellisuutta pankista. 

Aineisto voidaan myos salata ennen sen siir- 
tamista matkaviest imeen, jolloin matkaviestimessa on 
purettava salaus ennen aineiston allekir j oittamista . 
Talla voidaan varmistaa se, etta vain haluttu matka- 
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viestin vastaanottaa siirrettavan aineiston ja taata 
tietojen turvallisuus . 



nalta sovittua tunnisteellista lomakepohj aa , viestira- 
kennetta tai mita tahansa muuta sanomarakennetta , jo- 
hon taydennetaan ennalta sovitut oleelliset tiedot en- 
nen lomakkeen siirtamista matkaviestimeen . Tiiviste 
voidaan laskea esimerkiksi hash-f unktiolla . Viestin 
ja/tai lomakkeen allekir j oitukseen ja/tai salaukseen 
voidaan kayttaa julkisen ja salaisen avaimen menetel- 
maa . 



esitetaan aineisto ja/tai osa siita matkaviest imessa 
ennen aineiston allekir j oittamista . Esimerkiksi voi- 
daan esittaa lomakkeessa olevat saaja-, maksaja- ja 
viitetiedot seka maksettava summa. Myos on mahdollista 
vaatia matkaviest imen kaynnistamista allekir j oitusmoo- 
dissa ennen aineiston siirtamista siihen. Tama voi 
kaytannossa tarkoittaa sita, etta matkaviestimeen on 
syotettava toinen ennalta maaratty PIN-koodi, jolla 
matkaviestin on konfiguroitu kaynnistymaan ennalta 
maaratyssa allekir j oitusmoodissa . Voidaan kayttaa siis 
eraanlaista paikallista autent ikoint ia . 

Keksinnon kohteena on myos jarjestelma sah- 
koisessa muodossa olevan lomakkeen digitaaliseksi al- 
lekir j oittamiseksi turvallisesti matkaviestimella . 
Jar j estelmaan kuuluu edullisesti maksuautomaatt i ja 
siihen yhdistetyt valineet allekir j oitettavan aineis- 
ton, joka maariteltiin ylla, muodostamiseksi ja siir- 
tamiseksi matkaviestimeen . Maksuautomaat ilia voidaan 
tassa tarkoittaa mita tahansa paikallista ja paikalli- 
sesti kaytettavaa automaattia, joka voi olla tietolii- 
kenneverkon valityksella yhdistetty palvelutar j oaj aan, 
kuten pankkiin, kauppaan tai vastaavaan. 



kallisesti tietokoneeseen, joka on yhteydessa esimer- 
kiksi Internet -verkon valityksella palveluntar j oaj aan , 



Lomakkeen muodostamiseen voidaan kayttaa en- 



Keksinnon eraassa edullisessa sovelluksessa 



Maksuautomaatti voi olla toteutettu myos pai- 
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jolloin palveluntar joaj a tarjoaa tuotteitaan ja paive- 
luitaan Internet -verkon valityksella . Tassa tapaukses- 
sa allekirjoitettava aineisto siirretaan t ietokoneel ta 
allekirjoitettavaksi matkaviest imeen paikallista yhte- 
5 ytta kayttaen tai suoraan palveluntar j oaj an omalta 
palvelimelta kayttamatta paikallista tietokonetta ja 
yhteytta . 

Keksinnon mukaisesti maksuautomaattiin kuuluu 
valineet ensimmaisen tiivisteen laskemiseksi allekir- 

10 j oitettavasta aineistosta. Samaten matkaviest imeen 
kuuluu allekirjoitusvalineet siihen siirretyn aineis- 
ton allekir joittamiseksi . Allekir j oitusvalineisiin voi 
kuulua muisti, johon on tallennettu allekir j oituksen 
ja salauksen vaatimat algoritmit ja avaimet, ja pro- 

15 sessori, joka on yhdistetty muistiin ja joka kasitte- 
lee aineistoa toteuttaen digitaalisen allekir j oituksen 
ja mahdollisesti salauksen. Lisaksi maksuautomaattiin 
kuuluu valineet allekir j oitetun ja siirretyn aineiston 
oikeellisuuden varmistamiseksi vertaamalla matkavies- 

20 timessa allekir j oitettua tiivistetta ja aineistosta 
ennen allekir j oitusta laskettua tiivistetta keskenaan. 

Jar j estelmaan voi myos kuulua palvelin, joka 
on yhdistetty maksuautomaattiin ja/tai matkaviest imeen 
ja joka on toisen osapuolen, kuten pankin tai luotto- 

25 korttiyhtion, valvonnassa. Tallainen palvelin voi siis 
olla esimerkiksi pankin yllapitama ja sita voidaan 
kayttaa pankkitapahtumien toteuttamisessa . Palvelimeen 
voi myos kuulua valineet matkaviest imen tekeman digi- 
taalisen allekir j oituksen oikeellisuuden todentamisek- 

3 0 si ja salaus- ja purkuvalineet palvelimen ja maksuau- 
tomaatin ja/tai matkaviest imen valilla siirrettavan 
aineiston salaamiseksi ja purkamiseksi . 

Palvelimeen voi kuulua myos valineet aika- 
leiman merkitsemiseksi aineistoon ja valineet aineis- 

35 ton allekir j oitustapahtuman arkistoimiseksi sen jal- 
keen, kun allekir j oitus on todettu oikeaksi . Nama voi- 
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daan. toteuttaa ammattimiehen sinansa tuntemalla taval- 
la, eika niita sen vuoksi kuvata tassa tarkemmin. 

Esilla olevan keksinnon etuna tunnettuun tek- 
niikkaan verrattuna on, etta keksinnon ansiosta maksu- 
5 sovellusten, varmistustapahtumien ja muiden toteutta- 
minen matkaviest imella tulee entista helpommaksi. Kek- 
sinnon ansiosta matkaviest int a voidaan luotettavast i 
kayttaa digitaalisessa allekir j oituksessa ja talloin 
digitaalinen allekir j oitus voidaan yhdistaa monen eri 
10 sovelluksen yhteyteen. 

KUVALUETTELO 

Seuraavassa keksintoa selostetaan edullisten 
sovellusesimerkkien avulla viittaamalla oheiseen pii- 

15 rustukseen, jossa: 

kuvio 1 esittaa erasta esilla olevan keksin- 
non mukaista edullista j arj estelmaa ; 

kuvio 2 esittaa erasta toista esilla olevan 
keksinnon mukaista edullista j arj estelmaa ; 

20 kuvio 3 esittaa vuokaaviomuodossa esilla ole- 

van keksinnon eraan edullisen sovelluksen; ja 

kuvio 4 esittaa kaaviomaisest i eraan edulli- 
sen esimerkin allekir j oitettavan aineiston muodostami- 
sesta esilla olevan keksinnon yhteydessa. 

25 Kuviossa 1 esitettyyn j ar j estelmaan kuuluu 

paikallinen maksuautomaatt i (Local Payment Machine, 
LPM) 2 ja siihen yhdistetyt valineet allekir j oitetta- 
van aineiston, kasittaen lomakkeen, sen tunnisteen, 
j aetun datan j a/tai siihen liitetyt olennaiset tiedot , 

3 0 muodostamiseksi . Lisaksi maksuautomaatt iin kuuluu sii- 
hen yhdistetyt valineet 4 aineiston siirtamiseksi mat- 
kaviestimeen. Vastaavasti matkaviest imeen kuuluu vali- 
neet 1, joilla matkaviestin (MS) kommunikoi maksuauto- 
maatin kanssa. Eraassa edullisessa sovelluksessa vali- 

35 neet 1 ja 4 on toteutettu Bluetooth- teknologiaa kayt- 
taen. Tarkempaa kuvausta Bluetooth- tekniikasta esite- 
taan esimerkiksi WWW-sivulla www , blue tooth . com . Myos 
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muita tunnettuja siirtoyhteyskaytantoja, kuten infra- 
punaliitantaa voidaan kayttaa 

Edelleen kuviossa 1 esitettyyn j ar j estelmaan 
kuuluu palvelin 8, joka on yhdistetty TCP/IP- 
5 yhteydella maksuautomaattiin 2 ja joka tassa esimer- 
kissa on pankin hallinnoima. Palvelimeen kuuluu edel- 
leen valineet 9 digitaalisen allekir j oituksen oikeel- 
lisuuden todentamiseksi - kaytannossa niilla puretaan 
vastaanotetut salaviestit ja verrataan niissa olevia 

10 digitaalisia allekir j oituksia saatuihin kayttajatie- 
toihin. Lisaksi palvelimeen kuuluu valineet 11 ja 12, 
joilla merkitaan aikaleima allekir j oitettuun aineis- 
toon ja arkistoidaan allekir j oitustapahtuma sen jal- 
keen, kun allekir j oitus on todettu oikeaksi. Vastaavat 

15 todentamisvalineet voivat kuulua myos maksuautomaat- 
tiin ja tassa ne on merkitty numerolla 7. Valineilla 
7, 11 j a 12 voi olla myos ominaisuus, jolla tarvitta- 
vat julkiset avaimet noudetaan esimerkiksi TCP/IP- 
verkon valityksella yleisilta avainhallintapalvelimil - 

20 ta. 

Kuvion 1 esimerkissa siirretaan salattu ai- 
neisto, johon kuuluu laskulomake ja laskulomakkeesta 
laskettu tiiviste HI maksuautomaat ilta 2 matkaviesti- 
meen MS, vaihe 1. Matkaviestimessa aineisto eli lasku- 

25 lomake ja siihen tallennetut tiedot maksun saajasta, 
maksajasta, summasta ja maksun viitteesta esitetaan 
matkapuhelimen naytolla (10) , josta matkaviestimen 
kayttaja voi tarkistaa, mita on allekir joittamassa . 
Sen jalkeen kayttaja allekir j oittaa matkaviest imella 

30 MS aineiston ja siita lasketun tiivisteen HI. Aineis- 
to, johon on lisatty tiiviste Hl ds allekir j oitettuna 
digitaalisesti siirretaan maksuautomaattiin 2, vaihe 
2. Maksuautomaatin 2 ja matkaviestimen MS valinen sa- 
nomaliikenne voidaan salata kayttaen matkaviestimen 

35 kayttajan ja maksuautomaatin julkisia ja salaisia 
avaimia. Kun maksuautomaat issa 2 on tarkistettu alle- 
kir j oituksen oikeellisuus , lahetetaan clearing- sanoma , 
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vaihe 3 maksuautomaat ista edelleen pankkiin. Clearing 
on tunnettua ja yleisesti pankkimaailmassa kaytettya 
tekniikkaa eika sita kuvata tassa tarkemmin. 

Seuraavaksi viitataan kuvioon 2, jossa on 
esitetty vastaavanlainen jarjestelma kuin kuviossa 1, 
mutta tassa jarjestelmaa kaytetaan hieman eri tavalla. 
Ensin maksuautomaat issa muodostettu aineisto, esimer- 
kiksi lomake, siirretaan pankkiin, vaihe 1. Sen jal- 
keen aineistosta lasketaan maksuautomaat issa tiiviste 
HI, joka siirretaan matkaviestimeen allekir j oitetta- 
vaksi, vaihe 2. Siirto voidaan tehda kayttaen paikal- 
lista esimerkiksi Bluetooth-yhteytta . Matkaviest imessa 
saatu sanoma allekir j oitetaan digitaalisesti ja sen 
jalkeen allekir j oitettu ja mahdollisest i salattu ai- 
neisto lahetetaan pankkiin, vaihe 3. Pankissa verra- 
taan maksuautomaat ilta saadusta aineistosta laskettua 
tiivistetta HI matkaviest imelta saatuun t iivisteeseen 
Hl ds/ joka on digitaalisesti allekir j oitettu ja jos ne 
tasmaavat , hyvaksytaan allekir joitustapahtuma . Taman 
jalkeen palvelimella tehdaan aikaleimaus ja arkistoi- 
daan saatu allekir j oitustapahtuma . Pankki voi olla 
myos muu vastaava palveluntar j oaj a , kuten luottokort- 
tiyhtio, jolloin edella kuvatun lisaksi allekir j oituk- 
sen oikeellisuus vahvistetaan pankille, maksuautomaa- 
tille tai muulle palveluntar j oaj alle . Talloin luotto- 
korttiyhtio vahvistettuaan allekir j oituksen ottaa vas- 
tuun tapahtumasta . 

Viitaten viela kuvioon 3 esitetaan eras kek- 
sinnon edullinen sovellus. Aluksi muodostetaan aineis- 
to, joka on tarkoitettu allekir j oitettavaksi matka- 
viestimella, lohko 31. Aineistosta lasketaan ensimmai- 
nen tiiviste, HI, lohko 32. Sen jalkeen tarkistetaan, 
lohko 45, onko aineisto salattava ennen lahetysta mat- 
kaviestimeen. Jos aineisto on salattava, siirrytaan 
lohkoon 46 ja salataan se kayttaen matkaviest imen 
kayttajan julkista avainta. Salauksen jalkeen siirry- 
taan lohkoon 33. Jos aineistoa ei tarvitse salata, 
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siirrytaan suoraan lohkoon 33, jossa aineisto siirre- 
taan matkaviest imelle . Seuraavaksi siirrytaan lohkoon 
34 ja tarkistetaan matkaviest imen naytolla esitettava 
aineisto tai sen olennaiset tiedot eli esimerkiksi 
5 laskun saajan ja maksun oikeellisuus . Jos maksaja hy- 
vaksyy, lohkossa 35, siirrytaan lohkoon 37 ja allekir- 
joitetaan aineisto. Jos maksaja ei hyvaksy lohkossa 
35, siirrytaan lohkoon 36, jossa lahetetaan hylkayssa- 
noma aineiston lahettaj alle , esimerkiksi maksuautomaa- 

10 tille ja lopetetaan prosessi. Lohkosta 37 siirrytaan 
lohkoon 38, jossa muodostetaan aineisto digitaalisesta 
allekir j oituksesta ja tiivisteesta ja mahdollisesti 
saadusta aineistosta, johon kuuluu esimerkiksi lomak- 
keen olennaiset tiedot, lohko 38. Sen jalkeen aineisto 

15 siirretaan maksuautomaatt iin, lohko 39, josta edelleen 
siirrytaan lohkoon 40 ja verrataan siirretysta aineis- 
tosta laskettua tiivistetta allekir j oitettuun tiivis- 
teeseen. Jos tiivisteet vastaavat toisiaan, lohko 41, 
hyvaksytaan allekir j oitus ja tehdaan seuraavaksi maa- 

20 ritellyt toimenpiteet . 



voidaan proseduuri toistaa. Tassa vaiheessa on mahdol- 
lista kayttaa laskuria, jolla tarkkaillaan sita, ettei 
aineistoa laheteta useammin kuin ennalta on sovittu. 

25 Lohkosta 40 siirrytaan lohkoon 43, jossa kasvatetaan 
laskurin k = k+1 arvoa yhdella ja siita edelleen siir- 
rytaan lohkoon 44, jossa tarkistetaan laskurin arvo 
eli se, montako kertaa aineisto on siirretty matka- 
viestimeen. Jos arvo ylittaa ennalta sovitun, siirry- 

30 taan lohkoon 42 ja lahetetaan hylkayssanoma matkavies- 
timeen. Jos laskurin arvo on pienempi kuin ennalta so- 
vittu, siirrytaan uudelleen lohkoon 31 ja toistetaan 
prosessi . 



35 muodostaa ja allekir j oittaa lomake tai aineisto digi- 
taalisesti . Matkaviest imeen siirrettavaan aineistoon 
kuuluu lomaketunniste , joka on yksilollinen kaikille 



Jos lohkossa 40 tiivisteet eivat tasmanneet, 



Kuviossa 4 on esitetty eras edullinen tapa 
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kaytettaville lomakkeille, lohko 51. Lomaketunnistee- 
seen liittyy lomakekaavain, lohko 52, joiden perus- 
teella sovellukset, asiakas ja sovelluksen tarjoaja 
tietavat tarkalleen, millaisesta lomakkeesta on kysy- 
5 mys . Aineistoa muodostettaessa lomaketunniste ja loma- 
kekaavain ketjutetaan perakkain, kuten kuviossa 4 on 
esitetty ja sen jalkeen niista lasketaan ensimmainen 
tiiviste, lohko 54. 

Lomakkeeseen liitetaan usein lomakedataa, 

10 lohko 53, jo ennen sen siirtamiseksi matkaviestimeen 
allekir joitettavaksi . Talloin lomaketunniste ja loma- 
kedata ketjutetaan perakkain kuvion 4 osoittamassa 
jarjestyksessa ja niista saatu bittijono edelleen ket- 
jutetaan satunnaisten 16 tavun, lohko 55 kanssa. Nii- 

15 hin yhdistetaan ensimmainen tiiviste lohkosta 54. 

Tassa vaiheessa aineisto on valmis siirretta- 
vaksi matkaviestimeen, minka jalkeen siita lasketaan 
toinen tiiviste, lohko 56. Kaytannossa toinen tiiviste 
lasketaan matkaviest imessa ja lisataan allekir j oitet - 

20 tavaan sanomaan, lohko 57. Samaten allekir j oitettavaan 
sanomaan on lisatty kaytta j adata , jota matkaviestimen 
kayttaja on voinut taydentaa omilla tiedoillaan tar- 
peen mukaan. Edullisesti myos tahan allekir j oitetta- 
vaan viestiin lisataan lohkosta 55 16 satunnaistavua , 

25 jolloin aineiston siirtajan ja matkaviestimen kaytta- 
jan muodostaman allekir j oitetun sanoman oikeellisuutta 
voidaan tarkistaa. Kun satunnaistavut kayttaj adata ja 
toinen tiiviste on asetettu perakkain,. kayttaj an mat- 
kaviest imessa allekir joitetaan sanoma digitaalisesti . 

3 0 Taman jalkeen sanoma voidaan valittaa eteenpain toi- 
selle osapuolelle, maksuautomaatt iin tai muulle ai- 
neiston alkuperalahteelle . 

Yhteenvetona todetaan viela, etta keksintona 
on toteuttaa menetelma ja jarjestelma, jossa kayttaja, 

35 palvelun tarjoaja ja pankki , jotka mainitaan esimerk- 
kina, voivat varmistua digitaalisen allekirjoituksen 
oikeellisuudesta . Tarkoi tuksena on, etta allekirjoi- 




12 



P / F I 9 9 / 0 1 0 3 6 

13 

tettava aineisto voidaan sitoa j ohonkin kaytta j an da- 
taan, f ormaattiin ja kayttajan tekemaan digitaaliseen 
allekirjoitukseen. Allekir j oitus on siis pystyttava 
sitomaan tietynlaiseen ketjuun, joka kaytannossa vas- 
taa nykyisin kaytossa olevaa ketjua, jossa kayttaja 
omalla manuaalisella allekir j oituksellaan hyvaksyy os- 
toksiaan . Samaten menetelman tarkoituksena on identi- 
fioida allekirjoittaja luotettavast i ja lainsaatajan 
vaatimalla ja tarkoittamalla tavalla. 

Esilla olevaa keksintoa ei rajata tassa esi- 
tettyihin esimerkkeihin, vaan monet muunnokset ovat 
mahdollisia pysyttaessa oheisten patentt ivaatimusten 
maaritteleman suo j apiirin raj oissa . 
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PATENTT IVAAT I MUKSET 

1 . Menetelma sahkoisessa muodossa olevan lo- 
makkeen digitaaliseksi allekir j oittamiseksi turvalli- 
sesti matkaviestimella, johon menetelmaan kuuluu vai- 
5 heet 

siirretaan allekirjoitettava aineisto, johon 
kuuluu lomake, sen tunniste, jaettu data, ja/tai sii- 
hen lisatyt olennaiset tiedot, matkaviest imeen, 
tunnettu siita, etta 
10 lasketaan allekir joitettavasta aineistosta en- 

simmainen tiiviste (HI) ; 

lisataan tiiviste aineistoon siirrettavaksi 
matkaviest imeen; 

allekir j oitetaan digitaalisesti matkaviest i - 
15 mella siihen siirretty aineisto; ja 

varmistetaan allekirjoitetun ja siirretyn ai- 
neiston oikeellisuus vertaamalla allekir joitettua tii- 
vistetta ja aineistosta ennen allekir joitusta laskettua 
tiivistetta keskenaan . 
20 2. Patentt ivaat imuksen 1 mukainen menetelma, 

tunnettu siita, etta 

siirretaan matkaviest imeen allekir joitettavak- 
si siirretty aineisto toiselle osapuolelle; ja 

allekir j oitettu aineisto toiselle osapuolelle, 
25 jolloin toinen osapuoli varmistaa allekir j oituksen oi- 
ke e 1 1 i suuden . 

3. Patenttivaat imuksen 1 tai 2 mukainen mene- 
telma, tunnettu siita, etta salataan aineisto 
ennen sen siirtamista matkaviestimen ja toisen osapuo- 

30 len valilla; ja 

puretaan salaus ennen aineiston kasittelya, 
kuten allekir joitusta ja oikeellisuuden varmistamista . 

4. Jonkin edeltavista patentt ivaat imuksista 1 
- 3 mukainen menetelma, tunnettu siita, etta 

3 5 kaytetaan lomakkeen muodostamiseen ennalta so- 

vittua tunnisteellista lomakepohj aa, johon taydennetaan 
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oleelliset tiedot ennen sen siirtamista matkaviesti- 
meen. 

5. Jonkin edeltavista patenttivaatimuksista 1 
- 4 mukainen menetelma, tunnettu siita, etta 



6. Jonkin edeltavista patenttivaatimuksista 1 
- 5 mukainen menetelma, tunnettu siita, etta 

kaytetaan viestin allekir joitukseen ja/tai sa- 
laukseen julkisen ja salaisen avaimen menetelmaa. 



- 6 mukainen menetelma, tunnettu siita, etta 

esitetaan aineisto ja/tai osa siita matkavies- 
timessa ennen aineiston allekirjoittamista . 

8. Jonkin edeltavista patenttivaatimuksista 1 
15 - 7 mukainen menetelma, tunnettu siita, etta 

kaynnistetaan matkaviestin allekir joitusmoo - 
dissa ennen aineiston siirtamista matkaviestimeen . 

9. Jonkin edeltavista patenttivaatimuksista 1 

- 8 mukainen menetelma, tunnettu siita, etta 

2 0 merkitaan aineistoon aikaleima; ja 

arkistoidaan aineiston allekir j oitustapahtuma 
sen jalkeen, kun allekir j oitus on todettu oikeaksi . 

10. Jarjestelma sahkoisessa muodossa olevan 
lomakkeen digitaaliseksi allekir j oit t ami seksi turval- 

25 lisesti matkaviest imella (MS), johon j ar j estelmaan 
kuuluu 

maksuautomaatt i (2) ; 

maksuautomaattiin yhdistetyt valineet (3) al- 
lekir j oitettavan aineiston, johon kuuluu lomake, sen 
30 tunniste, jaettu data, ja/tai siihen lisatyt olennai- 
set tiedot, muodostamiseksi ; ja 

maksuautomaattiin yhdistetyt valineet (4) ai- 
neiston siirtamiseksi matkaviestimeen (MS) , tun- 
nettu siita, etta 

3 5 maksuautomaattiin kuuluu valineet (5) ensim- 

maisen tiivisteen (HI) laskemiseksi allekir j oitetta- 
vasta aineistosta; 



muodostetaan tiiviste hash-funktiolla . 



10 



7. Jonkin edeltavista patenttivaatimuksista 1 
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matkaviestimeen kuuluu allekir j oitusvaiineet 
(6) siihen siirretyn aineiston allekir j aittamiseksi ; 
ja 

maksuautomaattiin kuuluu valineet (7) alle- 
5 kirjoitetun ja siirretyn aineiston oikeellisuuden var- 
mistamiseksi vertaamalla allekir j oitettua tiivistet - 
ta(Hl dg ) ja aineistosta ennen allekir j oitusta laskettua 
tiivistetta (HI) keskenaan. 

11. Patenttivaatimuksen 10 mukainen jarjes- 
10 telma, tunnettu siita, etta j ar j estelmaan kuuluu 

palvelin (8) , joka on yhdistetty maksuauto- 
maattiin (2) ja matkaviestimeen (MS) ja kolmannen osa- 
puolen valvonnassa; ja 

matkaviestimeen kuuluu valineet allekir j oite- 
15 tun aineiston salaamiseksi . 

12. Patenttivaatimuksen 10 tai 11 mukainen 
jarjestelma, tunnettu siita, etta palvelimeen (8) 
kuuluu 

valineet (9) digitaalisen allekir j oituksen 
20 oikeellisuuden todentamiseksi . 

13 . Jonkin edeltavista patenttivaat imuksista 
10 - 12 mukainen menetelma, tunnettu siita, etta 
matkaviestimeen kuuluu 

valineet (10) aineiston ja/tai osan siita 
25 esittamiseksi matkaviest imessa ennen aineiston alle- 
kir j oitt amis ta . 

14 . Jonkin edeltavista patenttivaat imuksista 
10 - 13 mukainen menetelma, tunnettu siita, etta 
palvelimeen (8) kuuluu 

30 valineet (11) aikaleiman merkitsemiseksi ai- 

neistoon; ja 

valineet (12) aineiston allekir j oitustapahtu- 
man arkistoimiseksi sen jalkeen, kun allekir j oitus on 
todettu oikeaksi. 



35 
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(57). TIIVISTELMA 



Menetelma sahkoisessa 



muodossa 



olevan lomakkeen digi taaliseksi allekir- 
joittamiseksi turvallisesti matkaviesti- 
mella. Menetelmassa siirretaan allekir- 
joitettava aineisto, johon kuuluu loma- 
ke, sen tunniste, jaettu data, ja/tai 
siihen lisatyt olennaiset tiedot, matka- 
viestimeen, lasketaan allekir joitetta- 
vasta aineistosta ensimmainen tiiviste 
(HI) , lisataan tiiviste aineistoon siir- 
rettavaksi matkaviestimeen, allekir joite- 
taan digitaalisesti matkaviestimella sii- 
hen siirretty aineisto ja varmistetaan 
allekir joitetun ja siirretyn aineiston 
oikeellisuus vertaamalla allekir j oitettua 
tiivistetta ja aineistosta ennen allekir- 
joitusta laskettua tiivistetta keskenaan. 
Keksinnon ansiosta matkaviest inta voidaan 
turvallisesti kayttaa digitaaliseen alle- 
kir j oitukseen erilaisissa sovelluksissa . 



(Fig. 1) 



